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SIGNATURE SYSTEM PRESENTING USER SIGNATURE INFORMATION 

Cross Reference to Related Application 

This application is a continuation of 
5 International PCT Application No. PCT/JP9 9/04 185 filed 

on August 3, 1999. 

Background of the Invention 
Field of the Invention 

10 The present invention relates to a signature system 

which presents the information that the user is 
authenticated in receiving delivered goods, in a 
transaction with financial facilities, in various 
transactions with other users, etc. 

15 

Description of the Related Art 

In the Asian countries including Japan, people 
conventionally have the custom of writing their 
signatures accompanied by their own seals for 

20 authentication. For example, in Japan, a registered 

seal is used for an important transaction of real estate, 
etc., a banking seal is used for a transaction with a 
bank, and a receipt seal is used for reception of delivered 
goods . In the countries where there is no custom of using 

25 those seals in transactions, it is common to put a 



signature for agreement. 

However, a signature can be forged by others, and 
only a professional appreciator can correctly identify 
the signature. In addition, a seal can be forged, and 
it is also necessary to ask a professional appreciator 
to identify a seal as in the case of a signature. 
Therefore, when a signature and a seal are illegally 
used, the receiver is the document cannot correctly 
identify them. 

In addition, electronic transactions of these days 
which can be realized through a computer network cannot 
be accompanied by a signature or a seal. That is, it 
is furthermore difficult to confirm for a receiver of 
a document to authenticate a correspondent as the person 
described on the document, or to determine whether or 
not the document is an illegal copy. 

A password is used to identify a user, who is a 
customer in a transaction, in the conventional ATM 
(automatic teller machine) in financial facilities (bank, 
etc.). However, when significant information such as 
a user's telephone number, a user's birthday, etc. is 
used as a password, it is possibly stored on other paper 
medium, etc., and therefore can be easily guessed and 
illegally used by the third party. In addition, when 
insignificant information such as a randomnumber string, 
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etc. is used as a password, it is difficult for a use 
to correctly remember for a long time. As a result, the 
user often records his or her password on a paper medium, 
etc. which can be illegally searched by others. 
5 Furthermore, financial facilities store and 

manage passwords in a medium such as a master database, 
etc. to have a matching check on input passwords. 
Accordingly, there is the possibility that the medium 
is illegally accessed by the third party to abuse the 
10 passwords. 

Summary of the Invention 

The present invention aims at providing a signature 
system for presenting user identification information 
15 through an information processing device, and safely 

managing the information. 

According to the first aspect of the present 
invention, a signature system comprises an input unit 
and an output unit and presents a receiver with signature 
20 information of a user. 

The input unit inputs the identification 
information of the user and the output unit outputs 
information for generation of the signature information 
according to the input identification information in 
25 a format readable by a bar cord reader. 
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According to the second aspect of the present 
invention, a signature system comprises a reading unit 
and a generation unit and presents a receiver with 
signature information of a user. 
5 The reading unit reads information in a bar code 

format and the generation unit generates the signature 
information according to the read information. 

According to the third aspect of the present 
invention, a signature system comprises an input unit, 
10 a generation unit and an entry unit. 

A user inputs authentication information, which 
is significant and repeatedly reproducible by the user, 
through the input unit. The generation unit generates 
blind information of the authentication information and 
15 the entry unit enters the blind information in a device 

verifying signature information according to the 
authentication information . 

Brief Description of Drawings 

20 FIG. 1 shows the principle of the signature system 

of the present invention; 

FIG. 2 shows the configuration of the first 
signature system; 

FIG. 3 shows the configuration of the bar code 
25 reader; 
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shows 


the signature information; 


FIG. 


11 shows the configuration of the second 



i'j signature system; 

.? 10 FIG. 12 shows the transaction process; 

l if FIG. 13 shows the configuration of the third 

l= n signature system; 

i!3 FIG. 14 shows the user authentication process; 

j s g FIG. 15 shows the information for generation of 

Y.J 

15 a digital signature; 

FIG. 16 shows the process of outputting a digital 
receipt seal; 

FIG. 17 is a flowchart of the process of outputting 
a two-dimensional bar code; 
20 FIG. 18 is a flowchart of the process of reading 

a two-dimensional bar code, and the process of issuing 
certification information; 

FIG. 19 is a flowchart of the process of entering 
blind information; 
25 FIG. 20 is a flowchart of the user authentication 
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process; 

FIG. 21 shows the process of generating a digital 

seal; 

FIG, 22 is a flowchart of the process of generating 
5 a digital seal; 

FIG, 23 is a flowchart of the process of checking 
an illegal operation on the receiver side; 

FIG. 24 is a flowchart of the process of checking 
an illegal operation on the generation side; 
10 FIG. 25 shows the configuration of the information 

processing device; and 

FIG. 26 shows a storage medium. 

Description of Preferred Embodiments 

15 The embodiments of the present invention are 

described below in detail by referring to the attached 
drawings . 

FIG. 1 shows the principle of the signature system 
of the present invention. The signature system shown 
20 in FIG. 1 includes an input unit 1, an output unit 2, 

a read unit 3, and a generation unit 4, and presents 
user signature information with a receiver. 

According to the first principle, the input unit 
1 inputs user identification information, and the output 
25 unit 2 outputs the information for generation of 
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signature information in a format readable by a bar code 
reader according to the input identification 
information . 

The user identification information can be, for 
5 example, significant information repeatedly 

reproducible by a user, a print of a user's seal, etc., 
and can be input and managed as digital data. According 
i;3 to the identification information, necessary 

j information is generated to obtain signature information, 

i2 10 and the generated information is output in a bar code 

"J format. For example, output information contains user 

identification information, and information about a 
program for generating signature information using the 
LlJ identification information. 

|;3 15 According to the second principle, the read unit 

: . 

3 reads the information in the bar code format. The 
generation unit 4 generates signature information 
according to the read information. 

The read unit 3 reads the information output from 

20 the output unit 2. In addition, the generation unit 4 

executes, for example, a program contained in the read 
information, generates signature information 
containing the user identification information, and 
presents the receiver with the generated information. 

25 With the above described signature system, since 
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the information for generation of the signature 
information is output in the bar code format, and is 
transmitted to the receiver, it is very difficult for 
a user to understand the contents . Therefore, it is more 
5 difficult for the third party to illegally use the 

information than in the case in which a user's signature 
or seal is used, thereby guaranteeing higher security. 
In addition, the security can be furthermore improved 
by generating signature information with additional 

10 information added to user-input identification 

information, not by using the user-input identification 
information as is as signature information. 

Furthermore, as user identification information, 
complicated information can be obtained in the range 

15 of the capacity of the bar code, and it becomes more 

difficult for the third party to correctly guess the 
information than in the conventional password. As a 
result, it is next to impossible to generate the 
information for generation of signature information by 

20 a person other than the user inputting correct 

identification information . 

For example, the input unit 1 and the output unit 
2 shown in FIG. 1 correspond to a terminal unit 11 shown 
in FIG. 2 described later. The read unit 3 and the 

25 generation unit 4 shown in FIG. 1 correspond to a bar 



code reader 12 shown in FIG. 2 and a bar code reader 
82 shown in FIG. 11. Furthermore, the information for 
generation of signature information corresponds to 
two-dimensional bar codes 14 and 15 shown in FIG. 2. 

The signature system according to the present 
invention stores authentication information on a 
write-protected medium such as a two-dimensional bar 
code, etc. instead of putting a user signature and seal 
when presenting the processing device of the receiver 
with the signature information authenticating the user 
in receiving home-delivered goods and presenting 
transaction documents, etc. Then, the signature system 
has the stored information read by the processing device . 

This authentication information is stored in the 
user mind as significant information, can be correctly 
stored there forever, and can be repeatedly recalled 
as necessary. Therefore, the user need not store the 
authentication information on a paper medium, etc. , and 
it is very difficult for other users to be informed of 
the information. 

The authentication information can be, for example, 
user personal information (name, address, telephone 
number, birthday, hobby, specialty, family name before 
marriage, etc.), the members of a user family, user 
ancestry information (personal information of user 
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ancestry, etc.), user's favorite words (idiom, maxim, 
verse of a poem, family motto, etc. ) , persons respected 
by the user, etc. 

To improve the security, two or more items listed 
5 above should be combined. The user can select the items 

depending on the type of transaction. The complexity 
of the authentication information depends on the 
combination of the items, and can change the application 
of a digital signature (digital seal) . The user selects 

10 items from among a number of items and inputs them as 

his or her authentication information, and changes the 
number of item to be entered depending on the usage. 

For example, when the authentication information 
is used as a registered seal, the user combines three 

15 or more items to generate a level-1 digital signature. 

When the authentication information is used as a banking 
seal, the user combines two or more items to generate 
a level-2 digital signature. When the authentication 
information is used as a receipt seal, the user. uses 

20 only one item to generate a level-3 digital signature. 

In addition, plural pieces of information belonging to 
the same item such as three types of 4-character idioms 
can be combined. 

A two-dimensional bar code can output information 

25 of 2, 000 through 3,000 alphanumeric characters, and 600 
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through 700 Japanese characters. 

In addition, the processing device which reads the 
authentication information dynamically generates blind 
information for protection against illegal use by the 
5 third party when signature information is generated 

from the authentication information, and embeds the blind 
information into the signature information. Blind 
information refers to information obtainedby converting 
given information using unidirectional function such 

10 as a hash function, etc., or generated using the 

conversion result. The original information cannot be 
read from the blind information. 

The program for generating the blind information 
contains a user-exclusive one directional function and 

15 an encryption key, is stored on a two-dimensional bar 

code, and is read by the processing device with the 
authentication information . 

When the processing device reads two-dimensional 
bar code information, it reserves a dynamic digital data 

20 write area corresponding to the authentication 

information, a digital data storage area corresponding 
to the blind information, and a program storage area. 
When the processing device reads a two-dimensional bar 
code, it writes the authentication information to the 

25 dynamic write area, and loads a program onto the storage 
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area . 

When the program is read and executed, 
non-recallable data such as signature date and time, 
a dynamically obtained random number, etc. is written 
5 as use information. The use information indicates that 

the authentication information has been used. Then, a 
unidirectional function is applied to the use information, 
the application result is encrypted using an encryption 
key to generate blind information, and the generated 
10 information is written to the storage area of the blind 

information . 

Then, the program generates the signature 
information from the authentication information, the 
use information, and the blind information of the use 

15 information, stores the generated information in the 

processing device, and deletes itself from the storage 
area. In addition, if the name, etc. of the receiver 
is added to the use information, the security of the 
signature information can be furthermore improved. 

20 According to the above described signature system, 

since the authentication information is converted into 
the signature information and stored in the processing 
device, and the authentication information in 
comprehensible text is not stored anywhere, it is 

25 extremely hard for the third party to illegally use the 
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information . 

In addition, if a receiver or the third party uses 
a copy of the stored signature information as is for 
other purposes, the information is provided with the 
5 use information indicating that the information has 

already been used, thereby detecting the illegal use. 
Furthermore, even if the receiver or the third party 
makes a copy of the signature information and rewrites 
the use information into reasonable contents, the 
10 corresponding blind information cannot be generated. 

Therefore, an illegal use can be objectively proved by 
comparing the rewritten use information with the blind 
information . 

Thus, by generating signature information using 
15 the authentication information which can be repeatedly 

recalled only by the user, and the use information for 
protection of the authentication information against 
an illegal use , the present invention can have much higher 
security than the method in which a user signature and 
20 seal are used. 

FIG. 2 shows the configuration of the signature 
system using a two-dimensional bar code. The signature 
system shown in FIG. 2 comprises a user terminal unit 
11 (personal computer, etc.), a bar code reader 12 of 
25 a receiver, and a certification unit 13 (server, etc.) 



14 



or the third party. 

When a user presents a receiver with the 
identification information indicating the 

authentication, the user converts necessary information 
5 into two-dimensional bar codes 14 and 15 in the terminal 

unit 11 and manage the codes such that the signature 
information of digital data can replace a seal- In 
addition, necessary information for verification of 
signature information is entered in a database 16 of 

10 the certification unit 13 through a network. The 

two-dimensional bar code 14 corresponds to the above 
described authentication information, and the 
two-dimensional bar code 15 corresponds to the above 
described program . 

15 When the two-dimensional bar codes 14 and 15 are 

presented by the user, the receiver reads them through 
the bar code reader 12 , and the bar code reader 12 generates 
signature information for authentication of the user. 
At this time, the bar code reader 12 requests the 

20 certification unit 13 to verify the signature information 

through a network, receives the verification result, 
and presents the receiver with the result. 

The certification unit 13 corresponds to an 
official organization, which issues a seal registration 

25 certificate of a registered seal, and proves the legality 
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of the signature information from the view point of the 
third party according to the information entered in the 
database 16. Therefore, in the signature system 
containing the certification unit 13, it is assumed that 
5 authentication information is used instead of a 

registered seal, and the system is suitable for a case 
in which a user and a receiver process an important 
transaction. 

FIG. 3 shows the configuration of the bar code 

10 reader 12. The bar code reader shown in FIG. 3 comprises 

a read device 21, a communications device 22, a control 
device 23, a storage device 24, a display device 25, 
a timer 26, and a random number generator 27. 

The read device 21 reads the information of the 

15 two-dimensional bar codes 14 and 15, and inputs the 

information to the storage device 24 through the control 
device 23. The communications device 22 communicates 
with the certification unit 13, etc. through a network, 
and the display device 25 presents a receiver with 

20 necessary information. The timer 26 generates the 

current date and time information, and the random number 
generator 27 generates random numbers . The date and time 
information and random numbers are used as the above 
described use information. The control device 23 

25 controls the operation of other devices. 



16 



FIGS. 4 and 5 show the processes of a user entering 
the information for verification. First, the terminal 
unit 11 applies a message digest function (MD function) 
32 to authentication information 31 input by a user who 
5 is a registrant. The MD function 32 is a unidirectional 

function such as a hash function, etc. The 
authentication information 31 cannot be read from the 
MD 33. 

Next, the terminal unit 11 encrypts the MD 33 using 

10 an encryption key 34, and generates blind information 

35. For example, a DES (data encrypt ion standard) using 
the same encryption key for both encryption and 
decryption is used as an encryption algorithm. The 
terminal unit 11 transmits the blind information 35, 

15 the MD function 32, and the encryption key 34 to the 

certification unit 13 . The certification unit 13 enters 
the information in the database 16. 

A registrant inputs an image of an identification 
certificate 36 such as a passport, a driver license, 

20 etc. to the terminal unit 11, and transmits it to the 

certification unit 13 for authentication. If the 
authentication is accepted, the identification 
certificate 36 is immediately removed. 

Then, the certification unit 13 requests the 

25 terminal unit 11 for the authentication information 31 
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to determined whether or not the blind information 35 
belongs to the registrant. In response to the request, 
the registrant re-inputs the authentication information 
31, and the terminal unit 11 encrypts the authentication 
5 information 31 generates encrypted authentication 

information 37, and transmits it to the certification 
unit 13. 

The certification unit 13 decrypts the encrypted 
authentication information 37 using the encryption key 

10 34 stored in the database 16, and obtains authentication 

information in comprehensible text 38. Furthermore, it 
generates an MD 39 by applying the MD function 32 stored 
in the database 16 to the authentication information 
38, and generates blind information 40 by encrypting 

15 the generated MD 39 using the encryption key 34. Then, 

the certification unit 13 compares the obtained blind 
information 40 with the blind information 35 stored in 
the database 16. 

If the blind information 40 matches the blind 

20 information 35, the terminal unit 11 is notified that 

the entering process has been normally terminated. If 
they do not match each other, then the information entered 
in the database 16 is nullified, and the terminal unit 
11 is notified that the entering process has been 

25 suspended. Therefore, only when the registrant 
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re-enters the correct authentication information 31, 
the blind information 35, the MD function 32, and the 
encryption key 34 can be entered in the database 16. 
The authentication information 38, the MD 39, and the 
5 blind information 40 are removed immediately after being 

used . 

Next, when the registrant requests an issue of a 
certificate for authentication, the process shown in 
FIG. 6 is performed. First, when the terminal unit 11 

10 transmits the request to issue the certificate to the 

certification unit 13 , the certification unit 13 requests 
the terminal unit 11 to send the authentication 
information 31 . In response to the request, the terminal 
unit 11 encrypts the authentication information 31 using 

15 the encryption key 34, generates encrypted 

authentication information 41, and transmits the 
generated information to the certification unit 13. 

The certification unit 13 performs the process 
shown in FIG. 5 to verify the encrypted authentication 

20 information 41. First, the encrypted authentication 

information 41 is decoded using the encryption key 34 
stored in the database 16 to obtain authentication 
information in comprehensible text 42. Furthermore, it 
applies the MD function 32 stored in the database 16 

25 to the authentication information 42 to generate an MD 
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43, and generates blind information 44 by encrypting 
the information using the encryption key 34. The 
obtained blind information 44 is compared with the blind 
information 35 stored in the database 16. 
5 At this time, if the blind information 44 matches 

the blind information 35, the issue date and time of 
a certificate, the name of issuing organization, the 
effective term, etc. are added to the blind information 
44 as additional information 45, and generates 

10 certification information 46. The certification 

information 4 6 is transmitted to the terminal unit 11, 
the additional information 45 is entered in the database 
16,, and the process terminates. The authentication 
information in comprehensible text 42, the MD 43, and 

15 the blind information 44 are removed immediately after 

being used. If the blind information 44 does not match 
the blind information 35, it is assumed that the requester 
is different from the registrant, and the certification 
information 46 is not issued. 

20 Thus, the certification unit 13 can generate blind 

information from given authentication information at 
any time, compares it with the blind information 35 to 
determine whether or not the authentication information 
can be accepted. 

25 Described below is the process performed when a 
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user presents a receiver with a two-dimensional bar code . 
FIG. 7 shows a process of reading a two-dimensional bar 
code containing the certification information 46. When 
a user inputs the authentication information 31, the 
5 terminal unit 11 generates encrypted authentication 

information 51 as in the case of the encrypted 
authentication information 41 shown in FIG. 6, and 
outputs it together with the certification information 
46 to the two-dimensional bar code 14. In addition, the 

10 terminal unit 11 outputs the signature program 52 

containing the MD function 32 and the encryption key 
34 to the two-dimensional bar code 15. 

The bar code reader 12 reads the information of 
the two-dimensional bar codes 14 and 15, stores them 

15 in the storage area of the storage device 24, and then 

executes a signature program 52. The signature program 
52 first obtains date and time data from the timer 26, 
or random number data from the random number generator 
27, and uses them as use information 53. Then, the 

20 signature program 52 applies the MD function 32 to the 

use information 53 to generate MD 54, and generates blind 
information 55 by encrypting the MD 54 using the 
encryption key 34. 

Next, the encrypted authentication information 51, 

25 the certification information 46, the use information 
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53, and the blind information 55 are collected as 
signature information 56, and stored in the storage 
device 24 . Then, the signature program 52 in the storage 
device 24 removes itself, thereby terminating the 
5 process. 

The bar code reader 12 cannot verify the validity 
of the signature information 56 because the 
authentication information 31 in comprehensible text 
cannot be read from the encrypted authentication 

10 information 51 and the certification information 4 6 

contained in the signature information 56 . Accordingly, 
at a request from a receiver, the certification unit 
13 is requested to verify the signature information 56. 
FIG . 8 shows the above described verifying process . 

15 When the bar code reader 12 transmits a verification 

request together with the signature information 56 to 
the certification unit 13, the certification unit 13 
retrieves the encrypted authentication information 51, 
the certification information 46, the use information 

20 53, and the blind information 55 from the signature 

information 56. 

The certification unit 13 first decodes the 
encrypted authentication information 51 using the 
encryption key 34 to generate authentication information 

25 57 in comprehensible text, applies the MD function 32 
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to the authentication information 57 to generate an MD 
58 , and encrypts the MD 58 using the encryption key 34 
to generate blind information 59. The obtained blind 
information 59 is compared with the blind information 
5 35 stored in the database 16. 

If the blind information 59 matches the blind 
information 35, then the certification information 46 
is divided into blind information 60 and additional 
information 61, the blind information 60 is compared 

10 with the blind information 35, and the additional 

information 61 is compared with the additional 
information 45 stored in the database 16. 

If the blind information 60 matches the blind 
information 35, and the additional information 61matches 

15 the additional information 45, then the MD function 32 

is applied to the use information 53 to generate an MD 
62, and the MD 62 is encrypted using the encryption key 
34 to generate blind information 63. 

The obtained blind information 63 is compared with the 

20 blind information 55. 

If the blind information 63 matches the blind 
information 55, the signature information 56 is assumed 
to indicate the correct identification information about 
the user, and the bar code reader 12 is notified of the 

25 bar code reader 12. 
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If the blind information 59 does not match the blind 
information 35, the blind information 60 does not match 
the blind information 35, the additional information 
61 does not match the additional information 45, or the 
5 blind information 63 does not match the blind information 

55, then it is assumed that the signature information 
56 is not correct, and the information is provided for 
the bar code reader 12. The authentication information 
57, the MD 58, and the blind information 59 are removed 

10 immediately after they have been used. 

In the method of authenticating a user by a 
conventional authentication station, the MD function, 
the public key, the personal information, etc. of a user 
are published, thereby frequently failing in protecting 

15 the privacy of the user. In addition, the user has to 

manage his or her private key, and communicate his or 
her correspondent while confirming the digital 
signature . 

On the other hand, in the signature system shown 
20 in FIG. 2, the minimal information is entered as 

comprehensible text, and the original authentication 
information 31 is not entered as is, but is entered in 
the form of the blind information 35 incomprehensible 
to others. Therefore, the privacy of the user can be 
25 protected, and the authentication information 31 can 
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be protected against the illegal use by others. 

In addition, the two-dimensional bar code 14 can 
store the information about the transaction between a 
user and a receiver so that the certification unit 13 
5 can settle the transaction between them. In this case, 

the receiver uses the display device 25 of the bar code 
reader 12, confirms the transaction information read 
from the two-dimensional bar code 14, and requests the 
certification unit 13 to verify the signature information 

10 56 if the contents are correct. 

When the certification unit 13 determines that the 
signature information 56 is correct, it settles the 
transaction. Thus, for example, money information is 
transferred between the accounts of the user and the 

15 receiver opened in a banking facility. 

In the signature system shown in FIG. 2, the user 
outputs the certification information 46 issued by the 
third party through the two-dimensional bar code 14. 
In a transaction less significant than receiving goods 

20 from a home delivery service, etc., the certification 

information 46 and the certification unit 13 are not 
always required. In addition, simpler information can 
be used as the authentication information 31, and it 
is not always necessary to encrypt the information and 

25 output it to the two-dimensional bar code 14. 
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FIG. 9 shows a process of reading a two-dimensional 
bar code not containing the certification information 
46. When the user input the authentication information 
31, the terminal unit 11 outputs it to the two-dimensional 
5 bar code 14, and outputs the signature program 71 

containing the MD function 32 and the encryption key 
34 to the two-dimensional bar code 15. 

In this example, it is assumed that a user and his 
or her family use a two-dimensional bar code replacing 

10 a receipt seal. When the user himself or herself uses 

it, the personal information such as the name, the address, 
the telephone number, etc. is used as the authentication 
information 31. When a member of the user family uses 
it, only the family name is used as the authentication 

15 information 31. 

The bar code reader 12 reads the information of 
the two-dimensional bar codes 14 and 15, stores the 
information in the storage area of the storage device 
24, and then executes a signature program 71. The 

20 signature program 71 generates the blind information 

of test information 72, the authentication information 
31, and use information 73. The test information 72 is 
appropriate information for testing the MD function 32 
and the encryption key 34, and the use information 73 

25 is, for example, the date and time data obtained from 
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the timer 26. 

First, the MD function 32 is applied to each of 
the test information 72, the authentication information 
31, and the use information 73 to generate MD 74, 75, 
5 and 76, and then the information is encrypted using the 

encryption key 34 to generate blind information 77, 78, 
and 79. The blind information 77, 78, and 79 are blind 
information corresponding respectively to the test 
information 72 in comprehensible text, the 
10 authentication information 31, and the use information 

73. 

Then, signature information 80 is generated by 
collecting the test information 72, the authentication 
information 31, the use information 73, and the blind 

15 information 77, 78, and 79. The generated signature 

information 80 is stored in the storage device 24, and 
then the signature program 71 in the storage device 24 
is removed, thereby terminating the process. 

FIG. 10 shows the signature information 80 stored 

20 in the storage area of the storage device 24. In FIG. 

10, the test information 72, the authentication 
information 31, the use information 73, the blind 
information 78, 79 and 77 are respectively stored at 
addresses al, a2, a3, a4, a5, and a6. Before reading 

25 the two-dimensional bar codes 14 and 15, non-use 
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information is written at the address a3, and it is 
rewritten into reading date and time data. 

In this signature system, when a receiver or a third 
party copies stored signature information for another 
5 use, the illegal use can be detected because the current 

date and time is different from the date and time of 
the use information. Furthermore, when a receiver or 
j;3 a third party uses the date and time of the use information 

Ci after changing them into the current date and time, the 

l2 10 corresponding blind information cannot be generated. 

Therefore, the illegal use can be detected by comparing 
?,i3 the rewritten use information with the blind information . 

p Described below is the signature system for 

Id' processing a transaction between, a user using a 

i. —3 

Vj 15 two-dimensional bar code and banking facilities such 

I. A 

as banks, etc. FIG. 11 shows the configuration of the 
signature system. The signature system shown in FIG. 
11 comprises the terminal unit 11, a financial process 
device 81 (server, etc.), and a bar code reader 82 in 

20 financial facilities. The bar code reader 82 has the 

same configuration as that shown in FIG. 3. 

When a user presents a transaction document to 
banking facilities, necessary information is managed 
after being converted into the two-dimensional bar codes 

25 14 and 15 in the terminal unit 11 so that the signature 
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information of digital data can be used instead of a 
seal- In addition, the necessary information for 
verification of signature information is entered in a 
database 83 of the financial process device 81 through 
5 a network. 

The process of entering information in the 
financial process device 81 is the same as the processes 
shown in FIGS. 4 and 5. If the certification information 
46 shown in FIG. 6 has been issued from the certification 
10 unit 13, then the certification information 46 can be 

transmitted instead of transmitting the identification 
certificate 36 for authentication of the user as shown 
in FIG . 4. 

When the user presents the two-dimensional bar 
15 codes 14 and 15, the bar code reader 82 reads them, 

generates signature information, and authenticates the 

user. The process of reading the two-dimensional bar 

codes 14 and 15 is the same at the process shown in FIG. 

7. However, in this case, the certification information 
20 46 is not necessarily output to the two-dimensional bar 

code 14 , and does not have to be contained in the signature 

information 56. 

The bar code reader 82 requests the financial 

process device 81 to verify the signature information 
25 and settle the transaction, receives the process result, 
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and presents it to the user . The financial process device 
81 verifies the validity of the signature information 
according to the information entered in the database 
83. The process of verifying the signature information 
5 is the same as the process shown in FIG. 8. When the 

certification information 46 is not contained, the 
verification is omitted. If the validity of the 
signature information is verified, the financial process 
device 81 settles the transaction. Thus, for example, 

10 the money information (balance) of the account of the 

user opened in the financial facilities is updated. 

In the signature system, unlike the signature 
system shown in FIG. 2, the blind information of the 
authentication information of the user is managed by 

15 the financial facilities, that is, the correspondent, 

and is used for authentication of the user. Therefore, 
the authentication information is assumed to be used 
instead of a banking seal. 

In addition, to improve the security of 

20 transactions, the user password can be preliminarily 

entered in the database 83. In this case, when a 
transaction is started, the user presents the 
two-dimensional bar codes 14 and 15, and inputs his or 
her password in the financial process device 81 through 

25 a terminal of the financial process device 81 or an ATM, 
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etc. Then, the financial process device 81 refers to 

the database 83, and verifies the input password. 

Furthermore, with the signature system shown in 

FIG. 11, a home banking system and a firm banking system 
5 can be realized by transmitting and receiving information 

directly between the terminal unit 11 and the financial 

process device 81. 

First, when a user transmits a transaction request 

from the terminal unit 11 to the financial process device 
10 81, the financial process device 81 requests the terminal 

unit 11 to transmit the authentication information 31. 

When the user inputs the authentication information 31 

in response to the request, the terminal unit 11 encrypts 

the authentication information 31 using the encryption 
15 key 34, generates encrypted authentication information 

91, and transmits it to the financial process device 

81. 

The financial process device 81 decodes the 
encrypted authentication information 91 using the 

20 encryption key 34 stored in the database 83, and obtains 

authentication information 92 in comprehensible text. 
Furthermore, the financial process device 81 generates 
an MD 93 by applying the MD function 32 stored in the 
database 83 to the authentication information 92, and 

25 generates blind information 94 by encrypting the 
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generatedMD 93 using the encryption key 34 . The obtained 
blind information 94 is compared with the blind 
information 35 stored in the database 83. 

At this time, when the blind information 94 matches 
5 the blind information 35, the financial process device 

81 settles the requested transaction, and notifies the 
terminal unit 11 of the transaction result. If they do 
not match each other, then it does not settle the 
transaction, and notifies the terminal unit 11 that the 

10 transaction has been suspended. Therefore, only when 

a user inputs correct authentication information 31, 
a transaction can be settled. The authentication 
information 92, the MD 93, and the blind information 
94 are removed immediately after they are used. 

15 With the signature system shown in FIG. 11, like 

the signature system shown in FIG. 2, the minimal 
information is entered in comprehensible text while the 
authentication information 31 is entered in the form 
of the blind information 35 which cannot be recognized 

20 by others. Therefore, the privacy of the use can be 

guaranteed, and an illegal use of the authentication 
information 31 by others can be avoided. 

Next, the configuration and the operations of the 
above described signature system are described below 

25 in detail by referring to FIGS. 13 through 24. 
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FIG. 13 shows the configuration of the signature 
system obtained by integrating various aspects of the 
digital signature at levels 1 through 3 . The system shown 
in FIG. 13 comprises a signature generation device 101, 
5 a signature reception device 102, a POS (point of sale) 

terminal 103, an ATM 104, a financial process device 

105, and a digital registered seal management device 

106. They are connected through a network 107. 

The signature generation device 101 is a personal 

10 computer, etc. of a user, and comprises an image scanner 

111, a bar code reader 112, and a printer 113. The 
signature generation device 101 is a PC, etc. of a user, 
issues an entry request, an issue request, and outputs 
a bar code for a digital signature at level 1 (entered 

15 digital seal) and a digital signature at level 2 (digital 

banking seal) , and generates a digital signature at level 
3 (digital receipt seal) and outputs a bar code. 

The bar code reader 112 corresponds to, for example, 
the bar code reader 12 shown in FIG. 12, and a 

20 two-dimensional bar code 114 output from the printer 

113 corresponds to the two-dimensional bar codes 14 and 
15 shown in FIG. 2. The image scanner 111 is used to 
retrieve image data such as the image of a seal, etc. 

The signature reception device 102 comprises an 

25 electronic pen 115 and an embedded bar code reader 116, 
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and carried for use by a staff of home delivery service. 
When an article is delivered to a user , etc., thesignature 
reception device 102 receives the two-dimensional bar 
code 114 from the user. The embedded bar code reader 
116 corresponds to, for example, the bar code reader 
112 shown in FIG. 2. 

The POS terminal 103 comprises the bar code reader 
112, and receives the two-dimensional bar code 114 from 
the user at a shop, etc. which is provided with the POS 
terminal 103. The ATM 104 comprises the embedded bar 
code reader 116 and a built-in printer 117, and is used 
in various transactions (application for a transfer of 
an account, etc.) which require a digital banking seal 
in financial facilities, etc. 

The financial process device 105 comprises an 
account management DB (database) 118 and a digital bank 
seal management DB 119, and performs a process relating 
to a digital banking seal such as entering a digital 
banking seal to be performed when a new account is opened. 
The digital registered seal management device 106 
comprises a digital registered seal management DB 120, 
and performs a process relating to a registered digital 
seal such as entering a registered digital seal in an 
official process. 

FIG. 14 shows an example of an authenticating 
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process using a registered digital seal and a digital 
banking seal- When the authenticating process is 
offline, two-dimensional bar codes 121 and 122 are read 
by a bar code reader 123 (the bar code reader 112 or 
5 116 of the correspondent) , and the PC of the correspondent 

performs the authenticating process according to the 
information. When the authenticating process is online, 

|;3 the two-dimensional bar code 122 is read by the bar code 

reader 123, and the PC of the correspondent performs 

i l 10 the authenticating process according to the information . 

l 'i The two-dimensional bar code 122 is presented from 

■: =r 

"■ !5 . the user to the correspondent in response to the 

p certification information issued by the financial 

id process device 105 or the digital registered seal 

p 15 management device 106. The certification information 

contains authentication information 131, an issue date 
and time 132, a valid term 133, an issue facility 
information 134, a digital signature 135 of an issuing 
organization, blind information 136 of the 
20 authentication information 131, a program 137, a program 

138, an MD function 139, and an encryption key 140. 

When the PC of the correspondent reads the 
certification information, the program 137 is 
automatically activated, and the program 137 generates 
25 certification information 141 for the process. In the 
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data contained in the certification information 141, 
the data of the authentication information 131 through 
the blind information 136 are copied from the read data, 
and a use date and time 142 and additional information 
5 143 are newly generated. The use date and time 142 

indicates the date and time when the certification 
information is read. In online processing, the user can 
be authenticated by comparing the generated 
certification information 141 with the preliminarily 

10 entered certification information. 

The two-dimensional bar code 121 contains the 
program 138, the MD function 139, and the encryption 
key 14 0 . In offline processing, the two-dimensional bar 
code 121 in addition to the two-dimensional bar code 

15 122 is read, and the program 138 is automatically 

activated. 

When the user inputs his or her authentication 
information, the program 138 generates blind information 
144 of the authentication information using the read 

20 MD function 139 and the encryption key 140. Then, the 

user is authenticated by comparing the blind information 
144 with the blind information 136 of the certification 
information 141. In addition, the program 138 presents 
the operation state to the correspondent through a visual 

25 console 124. 
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The information required in generating a digital 
signature depends on the level of the digital signature. 
For a registered digital seal, for example, three types 
of information as shown in FIG . 15 are combined. The 
5 blind information 144 contains the authentication 

information 131, the program 138, and the MD function 
139. Information 145 is image data of an official 
certificate such as a driver license, a passport, etc. 
Information 14 6 is a private keyword of a user. 

10 For a digital banking seal, the blind information 

144 and the information 146 are combined. For a digital 
receipt seal, only the blind information 144 is used. 

FIG. 16 shows an example of a process of outputting 
a digital receipt seal. The original information about 

15 a digital receipt seal written to a two-dimensional bar 

code 150 contains a program 161 for a signature, an MD 
function 162 of a user, an encryption key 163 of a user, 
private information 164 (authentication information) 
of a user, MD function/encryption key verification 

20 information 165, and image data 166 (an image of a seal, 

a signature, a picture, etc.). 

The original information is read by the bar code 
reader 123, and read to memory 152. A CPU (central 
processing unit) 151 executes the program 161, and the 

25 program 161 generates a digital receipt seal using the 
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MD function 162 and the encryption key 163. The digital 
receipt seal can be output as a printout 153 in the 
two-dimensional bar code format or a text format, and 
also can be written to a portable storage medium 154. 
5 The output digital receipt seal contains the 

private information 164, a use day and time 167, the 
MD function/encryption key verification information 165, 
□ blind information 168 of the use day and time 167, blind 

h '~j information 169 of the MD function/encryption key 

\ : 1 10 verification information 165, and the image data 166. 

The use day and time 167 corresponds to the use information, 
hti and indicates the date and time when the digital receipt 

^ J seal is used. 

!:U FIG. 17 is a flowchart of the process of outputting 

□ 15 a two-dimensional bar code. First, a user inputs his 

or her confidential information as identification 
information (authentication information) to the 
signature generation device 101 (step SI), and inputs 
the same information again (step S2). The signature 
20 generation device 101 compares the information input 

in step SI with the information input in step S2 (step 
S3). It they do not match each other, the inputting 
processes in steps SI and S2 are repeated. 

If the information input in step SI matches the 
25 information input in step S2, then it is determined 
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whether or not the seal image data is required (step 
S4) . If the seal image data is required, then the seal 
image data is fetched to the identification information, 
and then it is determined whether or not the 
5 identification information should be encrypted (step 

S6) . 

If the identification information should be 
encrypted, then the preliminarily stored encryption 
management information 171 is accessed to retrieve an 
10 encryption key and a one-directional function (MD 

function) , and encrypt the identification information 
(step S7) . 

Next, the program information for avoiding an 
illegal use is generated (stepS8), the blind information 

15 of the identification information is generated (step 

S9) , and the generated information is converted into 
bar code information (stepSlO). Then, the obtained bar 
code information is output (step Sll) , thereby 
terminating the process. 

20 If it is determined in step S4 that no seal image 

is required, then the processes in and after step S6 
are performed. If it is determined in step S6 that an 
encrypting process is not required, then the processes 
in and after step S8 are performed. 

25 FIG. 18 is a flowchart of the process of reading 
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a two-dimensional bar code, and issuing certification 
information. This process is performed by a system 
comprising the signature reception device 102, the POS 
terminal 103, a reading device such as the ATM 104, and 
a management device such as the financial process device 
105 or the digital registered seal management device 
106. 

The system first reads the signature information 
presented in a two-dimensional bar code format (step 
S21) , and loads the read information to the memory in 
the system (step S22). The read information contains 
the authentication certification information 
(identification information and certification 
information) and the signature program. 

Then, the signature program is activated (stepS23) , 
the illegal use prevention information such as use 
information, etc. is added to the authentication 
certification information stored in the memory (step 
S24), and the blind information of the identification 
information is generated according to the read signature 
information (step S25) . 

Next, the generated blind information is compared 
with the blind information stored in the memory (step 
S26) . When they match each other, it is determined 
whether or not certification information shouldbe issued 
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(step S27) . If the certification information should be 
issued, then it is issued (step S28). Then, the 
authentication certification information in the memory 
is cleared (step S30) , and the signature program removes 
5 itself from the memory (step S31) , thereby terminating 

the process. 

If it is determined in step S26 that the two pieces 
of blind information do not match each other, an error 
message indicating that the signature cannot be accepted 

10 is output (step S29) , and the processes in and after 

step S30 are performed. If it is determined in step S28 
that the certification information is not required, then 
the processes in and after step S30 are performed. 

FIG. 19 is a flowchart of the process of entering 

15 blind information. First, the signature generation 

device 101 displays a selection menu screen for 
authentication information (step S41) , and the user 
selects whether or not the input information is to be 
used as authentication information (step S42). 

20 When the input information is used as 

authentication information, then the user selects 
whether or not the displayed contents include the 
contents to be used as authentication information (step 
S43) . The displayed contents refer to predetermined 

25 information displayed based on the dictionary of each 
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item (idiom, name of a person, poetry, etc.) of the 
authentication information - 

If the contents to be used as authentication 
information are contained in the displayed contents, 
then the corresponding contents are specif ied (stepS44) . 
If they are not contained in the displayed contents, 
then the contents required as authentication information 
are newly input (step S45) . For example, the input 
information is 4-character idiom, then the user directly 
inputs an idiom such as f < •feDZA<A' in step S4 5. If the 
input information refers to a respectable person, then 
the name of the person is directly input. 

Next, the user selects whether or not the next 
information is to be input (step S46) . If the next 
information is to be input, then the processes in and 
after step S42 are repeated. In addition, if input 
information is not used as authentication information 
in step S42, then the process in step S46 is performed. 

When the authentication information is completely 
input, the signature generation device 101 saves the 
input authentication information (step S47), and it is 
determined whether or not the authentication information 
has been input twice (step S48) . If the authentication 
information has been input only once, the inputting 
process in and after stepS41is repeated. When the second 
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intputting process is completed, the first input contents 
are compared with the second input contents (step S49) . 

Unless they match each other, the stored input 
information is cleared (step S50) , and the* inputting 
5 process in and after step S41 is repeated. If they match 

each other, then the blind information is generated 
according to the input authentication information (step 
S51) , and the stored authentication information is 
cleared (step S52) . 

10 Next, blind information is entered in the 

organizations (banks, public of f ices, etc.) (step S53) . 
Thus, the generated blind information is transferred 
to the management devices such as the financial process 
device 105, the digital registered seal management device 

15 106, etc. , and the management devices store the received 

blind information in a blind information management DB 
172 (step S54 ) . The blind information management DB 172 
corresponds to the digital bank seal management DB 119 
and the digital registered seal management DB 120. 

20 Then, the management device notifies the signature 

generation device 101 of the entry result (step S55) , 
thereby terminating the process. The same process is 
performed when information is entered from a device other 
than the signature generation device 101. 

25 FIG. 20 is a flowchart of the process of 
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authenticating a user according to authentication 
information when a transaction is processed. First, the 
ATM 104 displays the authentication information 
selection menu screen (step S61) , and the user selects 
5 whether or not input information is to be used as 

authentication information (step S62). 

When the input information is to be used as 
authentication information, the user inputs the first 
authentication information (step S63) , and selects 
10 whether or not the next information is to be input (step 

564) . When the next information is to be input, the 
processes in and after step S62 are repeated. If it is 
selected not to use input information as authentication 
information, the process in step S64 is performed. 

15 When the authentication information is completely 

input, the ATM 104 generates the blind information 
according to the input authentication information (step 

565) , and clears the authentication information in the 
memory (step S66) . 

20 When the generated blind information is 

transferred to a management device such as the financial 
process device 105 and the digital registered seal 
management device 106, the management device reads the 
blind information of the user from the blind information 

25 management DB 172 (step S67) . Then, the received blind 
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information is compared with the read blind information 
(step S68) . If they match each other, a message that 
a user has been authenticated is transmitted to the ATM 
104 . 

In response to this, the ATM 104 outputs a message 
that a user has been authenticated (step S69) , and a 
screen of a transaction to be processed is displayed 
(step S70) . Then, the user performs a necessary 
operation for the transaction (step S71) , thereby 
terminating the process. 

If the two pieces of blind information do not match 
each other in step S68, the management device transmits 
a message that the user is not authenticated, the ATM 
104 outputs the message (step S72) , thereby terminating 
the process. The similar process is performed when the 
authentication information is input from a device other 
than the ATM 104 . 

FIG. 21 shows the process of generating a variable 
digital receipt seal by the signature generation device 
101. FIG. 22 is a flowchart of the process. The 
signature generation device 101 first transfers an MD 
confirmation key of a storage area 173 to a signature 
area 175 (step S81) , and the authentication information 
to the signature area 175 (step S82) . 

Next, using the MD function 176, the MD confirmation 
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key is converted in to an MD confirmation key, and is 
transmitted to the signature area 175 (step S83) . Then, 
using an MD function 176, the authentication information 
is converted into ( blind authentication information, and 
5 is transferred to the signature area 175 (step S84) . 

Then, the current time obtained from a timer 174 
is transferred to the signature area 175 as a generation 
time (step S85) , and the generation time is converted 
into blind generation time, and is transferred to the 
10 signature area 175 (step S86) . Then, the contents of 

the signature area 175 is transferred to the signature 
reception device 102 as a digital receipt seal (step 
S87), thereby terminating the process. 

FIG. 23 is a flowchart of the process of the 
15 signature reception device 102 checking an illegal use. 

The signature reception device 102 first receives a 
digital receipt seal (step S91), and compares the 
authentication information therein with the 
authentication information stored on the receiving side 
20 (step S92) . 

When they match each other, the current time is 
obtained from the timer (step S93) , a predetermined 
allowable time is added to the generation time contained 
in the digital receipt seal, and the addition result 
25 is compared with the current time (step S94) . If the 
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addition result the current time, then the receipt OK 
notification is transmitted to the generation side (step 
S95) , thereby terminating the process. In addition, if 
the addition result < the current time, then a reception 
5 error notification is transmitted to the generation side 

(step S96) , thereby terminating the process. 

If the two pieces of authentication information 
do not match each other in step S92, then the process 
in step S96 is performed, thereby terminating the process . 

"-4 

M 10 The similar process is performed also when the device 

=2 other than the signature reception device 102 receives 

;n the digital reception seal. 

;3 FIG. 24 is a flowchart of the process of the 

j signature generation device 101 checking an illegal use . 

t 15 This process is performed when the user checks his or 

her own digital receipt seal. The signature generation 
device 101 first compares the MD confirmation key of 
the storage area 173 with the MD confirmation key of 
the digital receipt seal to be checked so that an illegal 
20 amendment to the MD confirmation key can be detected 

(step S101) . 

If they match each other, then the authentication 
information of the storage area 173 is compared with 
the authentication information of the digital receipt 
25 seal to be checked so that an illegal amendment to the 
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authentication information can be detected (step S102) . 
If they match each other, then the MD confirmation key 
of the storage area 173 is converted into blind data 
using the MD function 176 to confirm that the same MD 
5 function is used for the information . Then, the obtained 

result is compared with the blind MD confirmation key 
to be checked (step S103) . 

If they match each other, then the generation time 
to be checked is converted into blind data using the 

10 MD function 17 6 to detect an illegal amendment to the 

generation time, and the obtained result is compared 
with the blind generation time to be checked ( step S104 ) . 
If they match each other, then a check OK notification 
is displayed (step S105) , thereby terminating the 

15 process. 

Unless the two pieces of the compared data match 
each other in step S101, S102, S103, or S104, a check 
error notification is displayed (step S106) , thereby 
terminating the process. 

20 According to the above described embodiments, 

two-dimensional bar code is used as a medium for use 
in presenting authentication information . In addition, 
an optional storage medium such as a one-dimensional 
bar code, an IC (integrated circuit) memory card, etc. 

25 can be used. When an IC memory card is used, a processing 



device provided with a memory card interface instead 
of a bar code reader is used . 

Furthermore, it is not necessary to use an 
encryption algorithm in a common key system when blind 
5 information and encrypted authentication information 

are generated. In this case, an encrypt algorithm such 
as an RSA (Rivest-Shamir-Adleman) , etc. in which 
different encryption keys are used between an encrypting 
process and a decrypting process can be adopted. It is 

10 obvious that different encryption algorithms can be used 

in generating blind information and encrypted 
authentication information . 

The terminal unit 11, the bar code reader 12, and 
the certification unit 13 shown in FIG. 2, the financial 

15 process device 81, and the bar code reader 82 shown in 

FIG. 11, and the signature generation device 101, the 
signature reception device 102, the POS terminal 103, 
the ATM 104, the financial process device 105, and the 
digital registered seal management device 106 can be 

20 configured using, for example, an information processing 

device (computer) as shown in FIG. 25. 

The information processing device shown in FIG. 
25 comprises a CPU (central processing unit) 181, memory 
182, an input device 183, an output device 184 , an external 

25 storage device 185, a medium drive device 186, and a 
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network connection device 187. These units are 
interconnected through a bus 188. 

The memory 182 contains ROM (read-only memory) , 
RAM (random access memory) , etc., and stores a program 
5 and data for use in a process. The CPU 181 performs 

various processes of the above described signature system 
by executing a program using the memory 182. 

The input device 183 is, for example, a keyboard, 
a pointing device, a touch panel, etc., and is used in 

10 inputting necessary instruction and information. The 

output device 184 is, for example, a display, a printer, 
etc., and outputs a process result, a two-dimensional 
bar code, etc. 

The external storage device 185 canbe, forexample, 

15 a magnetic disk device, an optical disk device, a 

magneto-optical disk device, etc. The external storage 
device 185 can also be used as the database 16 shown 
in FIG. 2, the database 83 shown in FIG. 11, and the 
databases 118, 119, and 120 shown in FIG. 13. 

20 The medium drive device 186 drives a portable 

storage medium 189, and accesses the stored contents 
therein. The portable storage medium 189 can be an 
optional computer-readable storage medium such as a 
memory card, a floppy disk, a CD-ROM (compact disk 

25 read-only memory) , an optical disk, a magneto-optical 
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disk, etc. The portable storage medium 189 stores the 
above described program and data, and loads them to the 
memory 182 as necessary for use. 

The network connection device 187 communicates 
5 with an external device through an optional network 

(circuit) such as a LAN (local area network) . An 
information processing device receives the above 
described program and data from an external device as 
necessary through the network connection device 187, 

10 and can use them after loading them to the memory 182. 

FIG. 26 shows a computer-readable storage medium 
capable of providing a program and data for the 
information processing device shown in FIG. 25. The 
program and data stored in the portable storage medium 

15 189 and an external database 190 are loaded onto the 

memory 182 . Then, the CPU 181 executes the program using 
the data to perform a necessary process. 

According to the present invention, the 
identification information of a user can be easily and 

20 securely presented to a receiver using digital data such 

as a two-dimensional bar code, etc. In addition, since 
the identification information does not have to be stored 
in a storage medium for management, and a user inputs 
the information each time he or she is required to present 

25 it, an illegal use by other persons can be avoided. 
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Therefore, it guarantees the security higher than using 
user's signature or registered seal. 
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